Sumo Logic Breach Shows Leaked Credentials Still a Persistent Threat
Sumo Logic reported a security breach on November 3, 2023, due to a compromised credential that allowed unauthorized AWS account access.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
GitGuardian
Handle secrets like API keys securely in javascript projects with environment variables
In this video we look at how to effectively use the dotenv npm package to securely use secrets like API keys by loading them into your project as environment variables. To do this we first place our secrets in a.env file and the dotenv project will load these in as env variables.
Webinar Recap: Hands-on guide to Runtime Security for CI/CD Pipelines with StepSecurity
A condensed recap of our hands-on runtime security webinar from September. Get the juiciest knowledge nuggets and pointers to more.
API World 2023: Bringing together API, AI, and Secrets security
API World 2023 was all about sharing insights on best practices, accounting for all your assets, and the importance of AI and API cybersecurity in an API-driven world.
Navigating Cloud and Application Security: Insights from the Gartner Security and Risk Management Summit
Discover insights from Gartner's Security and Risk Management 2023 Summit in London. Learn how CNAPP enhances protection in a complex cloud environment.
How to Secure Your Secrets Manager with GitGuardian Honeytoken
Learn how to enhance secrets manager security with GitGuardian Honeytoken. Strengthen your system's security and protect your critical assets effectively.
How to Handle Secrets in Helm
Learn step-by-step techniques and best practices to handle secrets in Helm charts safely and effectively. Level up your Helm deployments today!
Detect Secrets In Docker Images With ggshield - The GitGuardian CLI
Did you know that you can use ggshield to scan docker images for secrets? Many Docker images get shared through places like Dockerhub, and sometimes, images get shared unexpectedly, such as when you have a code leak. We built the `ggshield secret scan docker` command to help. With one simple command, anyone on your team can quickly detect any hardcoded credentials inside a docker image.
Connecting with the community at BSides Atlanta 2023
Dive into BSides Atlanta 2023, the largest free security event in the South! Explore insights from top security professionals on Web3.0, cloud vulnerabilities, and more.
GitGuardian Unveils "HasMySecretLeaked," Bringing Leak Detection to Every Secret In The DevOps Pipeline
The company's latest project helps organizations proactively check if their developer secrets and credentials have leaked in public.